Ibm

Db2

323 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2020-5025

  • EPSS 0.29%
  • Veröffentlicht 11.03.2021 16:15:12
  • Zuletzt bearbeitet 21.11.2024 05:33:34

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system ...

5.5

CVE-2020-4642

  • EPSS 0.06%
  • Veröffentlicht 23.12.2020 17:15:13
  • Zuletzt bearbeitet 21.11.2024 05:33:01

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow local attacker to cause a denial of service inside the "DB2 Management Service".

7.8

CVE-2020-4739

  • EPSS 0.07%
  • Veröffentlicht 20.11.2020 14:15:11
  • Zuletzt bearbeitet 21.11.2024 05:33:11

IBM DB2 Accessories Suite for Linux, UNIX, and Windows, DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local authenticated attacker to execute arbitrary code on the system, caused by DLL se...

7.8

CVE-2020-4701

  • EPSS 0.07%
  • Veröffentlicht 19.11.2020 16:15:10
  • Zuletzt bearbeitet 21.11.2024 05:33:08

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privile...

4.4

CVE-2020-4414

  • EPSS 0.05%
  • Veröffentlicht 01.07.2020 15:15:15
  • Zuletzt bearbeitet 21.11.2024 05:32:42

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local attacker to perform unauthorized actions on the system, caused by improper usage of shared memory. By sending a specially-crafted re...

7.5

CVE-2020-4420

  • EPSS 2.04%
  • Veröffentlicht 01.07.2020 15:15:15
  • Zuletzt bearbeitet 21.11.2024 05:32:43

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow an unauthenticated attacker to cause a denial of service due a hang in the execution of a terminate command. IBM X-Force ID: 180076.

5.3

CVE-2020-4355

  • EPSS 0.47%
  • Veröffentlicht 01.07.2020 15:15:14
  • Zuletzt bearbeitet 21.11.2024 05:32:38

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a denial of service, caused by improper handling of Secure Sockets Layer (SSL) renegotiation requests. By sending specially-crafted req...

7.8

CVE-2020-4363

  • EPSS 0.07%
  • Veröffentlicht 01.07.2020 15:15:14
  • Zuletzt bearbeitet 21.11.2024 05:32:38

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with r...

4.7

CVE-2020-4386

  • EPSS 0.03%
  • Veröffentlicht 01.07.2020 15:15:14
  • Zuletzt bearbeitet 21.11.2024 05:32:41

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to obtain sensitive information using a race condition of a symbolic link. IBM X-Force ID: 179268.

4.7

CVE-2020-4387

  • EPSS 0.03%
  • Veröffentlicht 01.07.2020 15:15:14
  • Zuletzt bearbeitet 21.11.2024 05:32:41

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to obtain sensitive information using a race condition of a symbolic link. IBM X-Force ID: 179269.